User may inject custom fields values in mailto links.
mailto
Upgrade to 10.0.4.
If you have any questions or comments about this advisory, mail us at glpi-security@ow2.org.
Impact
User may inject custom fields values in
mailtolinks.Patches
Upgrade to 10.0.4.
For more information
If you have any questions or comments about this advisory, mail us at glpi-security@ow2.org.